CVE Vulnerabilities

CVE-2015-3165

Published: May 28, 2015 | Modified: Jan 05, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
RedHat/V2
5 MODERATE
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V3
Ubuntu

Double free vulnerability in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 allows remote attackers to cause a denial of service (crash) by closing an SSL session at a time when the authentication timeout will expire during the session shutdown sequence.

Affected Software

Name Vendor Start Version End Version
Ubuntu_linux Canonical 12.04 12.04
Ubuntu_linux Canonical 14.04 14.04
Ubuntu_linux Canonical 14.10 14.10
Ubuntu_linux Canonical 15.04 15.04
Debian_linux Debian 7.0 7.0
Debian_linux Debian 8.0 8.0
Red Hat Enterprise Linux 6 RedHat postgresql-0:8.4.20-3.el6_6 *
Red Hat Enterprise Linux 7 RedHat postgresql-0:9.2.13-1.ael7b_1 *
Red Hat Software Collections for Red Hat Enterprise Linux 6 RedHat postgresql92-postgresql-0:9.2.13-1.el6 *
Red Hat Software Collections for Red Hat Enterprise Linux 6 RedHat rh-postgresql94-postgresql-0:9.4.4-1.el6 *
Red Hat Software Collections for Red Hat Enterprise Linux 6.5 EUS RedHat postgresql92-postgresql-0:9.2.13-1.el6 *
Red Hat Software Collections for Red Hat Enterprise Linux 6.5 EUS RedHat rh-postgresql94-postgresql-0:9.4.4-1.el6 *
Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS RedHat postgresql92-postgresql-0:9.2.13-1.el6 *
Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS RedHat rh-postgresql94-postgresql-0:9.4.4-1.el6 *
Red Hat Software Collections for Red Hat Enterprise Linux 7 RedHat postgresql92-postgresql-0:9.2.13-1.el7 *
Red Hat Software Collections for Red Hat Enterprise Linux 7 RedHat rh-postgresql94-postgresql-0:9.4.4-1.el7 *
Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS RedHat postgresql92-postgresql-0:9.2.13-1.el7 *
Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS RedHat rh-postgresql94-postgresql-0:9.4.4-1.el7 *
Postgresql-8.4 Ubuntu precise *
Postgresql-9.1 Ubuntu precise *
Postgresql-9.1 Ubuntu precise/esm *
Postgresql-9.1 Ubuntu trusty *
Postgresql-9.1 Ubuntu upstream *
Postgresql-9.3 Ubuntu trusty *
Postgresql-9.3 Ubuntu trusty/esm *
Postgresql-9.3 Ubuntu upstream *
Postgresql-9.4 Ubuntu upstream *
Postgresql-9.4 Ubuntu utopic *
Postgresql-9.4 Ubuntu vivid *
Postgresql-9.4 Ubuntu wily *

References